Asst Manager II IT Auditor, Fulfillment Services Group Bengaluru

About Flipkart
In 2007, we started the Flipkart journey by selling books online. But now, over a decade later, our story is quite
different. Today, Flipkart is India’s largest online marketplace and one of India’s leading technology powerhouse that
is disrupting the way India shops online. What has got us here? The dynamic, passionate and talented folks we call
Flipsters!

Our core values define our identity and form the basis of our actions and reflect in everything that we do at Flipkart.
Values enable us to shape the desired organizational culture in which each Flipster can thrive and be at their best.

We believe in taking bold bets and changing the paradigm, having a sense of urgency to solve problems strategically
and putting great ideas into action. We look at the world from our customer’s point of view and keep customers at the
heart of everything we do. We strive to do the right thing always and be committed to our customers and
stakeholders.

About the team

The Group Internal Audit team is responsible to examine and evaluate the adequacy, effectiveness and efficiency of
the organization’s internal control systems and procedures and recommend corrective actions to improve operations,
enhance internal controls and reduce costs where possible. The team works as internal controls assurance provider,
third line of defense for the organization and covers all the business entities of Flipkart group.

About the role

This role is required to manage and conduct IT audits and integrated audits with finance, IT, and process auditors.
This role covers stakeholder’s management, manage external consultants, manage timelines, excellent quality
documentation of RCM, audit workpapers and audit reports. This role also requires contribution in risk assessment,
conducting projects to identify new technologies & audit areas, working as advisory to other organization functions,
and providing trainings on cybersecurity areas & audit processes.

What you’ll do:

● To assist in Co-ordinating internal audits (IT Domain) across all FK group entities.

● To independently manage IT audit engagements

● To assist in planning and preparation of audit assignment and special projects

● To execute the audit engagements, ensuring that methodologies governing internal audits are followed and
coverage of all risks for the in-scope processes
● To effectively and continuously communicate findings and recommendations to Senior Management

● Independently prepare/ modify the audit programs to ensure coverage of all risks and be able to execute the
audit as per the audit program.
● Provide assurance that IT operations and processes conform to current policies and procedures and how to
improve them.
● Independently prepare the internal audit report, ensuing that the issues are adequately communicated and is
supported with facts.
● To comply with Internal Audit mandates and timelines

What you’ll need:

Education & Professional background

 ● B.E/B.Tech/CA or any other similar qualification with experience as a infosec and auditor professional for at
least 4+ years
● Currently working with Big4, reputed professional firm or corporate audit group of a reputed company.

● Possess certificates like ISO 27001, CISA, CISSP, CIA, CEH

Personal Traits
● Good communication skills, both verbal and written.

● Ability to confidently present audit risks and his/her point of view effectively with all levels of management
and staff.
● Relationship Management

● Inter-Personal Skill

● Willing to travel

● High on integrity

Skills
● High attention to detail

● Ability to organize work and consistently meet deadlines

● Excellent MS Office skills (Excel, Word PowerPoint).

● Ability to adopt new IT tools

● Ability to work alone and to plan and execute projects with minimum supervision and to complete work within
required deadlines.
● Ability to think “outside the box” and apply creative and constructive thinking to propose recommendations
for improvements to IT process controls, procedures, and policies

Experience
● Exposure in conducting review of IT controls in an ERP environment like SAP/Oracle/legacy

● Possess knowledge and understanding of audit methodologies, system development life cycle, change
management, Access rights and segregation of duties, privilege access management, infrastructure
(Network, OS, DB) security, application security, cryptography, BCP DR, vulnerability management and
ITGC / ITAC frameworks.
● Identify control deficiencies, support root cause analyses, and design efficient and effective remediation
plans
● Good experience of designing/reviewing IT architecture and General Controls.

● Good knowledge of Internal Control processes and Risk Management.

● Experience in cyber security, risk management, data privacy, third party security assessment, cloud security

● Knowledge in frameworks like ISO 27001, NIST